I've recently started to work on mod_ssl 2.7. A few important things
were already comitted to CVS. Two features wait for you to test it in
depth before the stuff is released:
*) Added new Cyclic Buffer based Shared Memory Session Cache
as ssl_scache_shmcb.c. This was contributed by Geoff Thorpe
<[EMAIL PROTECTED]> and is derived from the "c2shm" variant used
in Stronghold V3. It uses a fixed size cyclic buffer placed over
a shared memory segment for storing SSL session ids. This way it
is even more efficient and faster than the old hash table based
shared memory cache (ssl_scache_shmht.c).
*) Added experimental support for the ENGINE branch of OpenSSL 0.9.6.
A new SSLCryptoDevice configuration directive is available if the
OpenSSL-ENGINE 0.9.6 package and --enable-rule=SSL_EXPERIMENTAL
is used. The default is "SSLCryptoDevice builtin". To enable
to use of a crypto device use "SSLCryptoDevice <name>",
where <name> is its ID as used with the OpenSSL command line
option "-engine <name>". Keep in mind that you have to use
"LDFLAGS='-L/path/to/<name>/lib -l<name>'" on the Apache
configuration command line in order to make the crypto device
vendor library available to OpenSSL.
If you want to try the stuff out, grab the latest snapshot from
ftp://ftp.modssl.org/snapshot/ and give it a try.
Yours,
Ralf S. Engelschall
[EMAIL PROTECTED]
www.engelschall.com
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
